NCC Group Plc

nccgroup

Please report all security issues to security at nccgroup dot com

Global

https://www.nccgroup.com

@nccgroupinfosec

NCC Group Plc's repositories

redsnarf

RedSnarf is a pen-testing / red-teaming tool for Windows environments

Language:PowerShellApache-2.01198 82 9

DriverBuddy

DriverBuddy is an IDA Python script to assist with the reverse engineering of Windows kernel drivers.

Language:PythonMIT339 25 3

acCOMplice

Tools for discovery and abuse of COM hijacks

Language:PowerShellNOASSERTION274 15 1

G-Scout

Google Cloud Platform Security Tool

Language:PythonGPL-3.0231 19 9

TPMGenie

TPM Genie is an I2C bus interposer for discrete Trusted Platform Modules

Language:C++205 18 8

thetick

A simple embedded Linux backdoor.

Language:PythonLGPL-3.0195 11 4

kube-auto-analyzer

Kubernetes Auto Analyzer

Language:HTMLAGPL-3.0191 17 2

BLESuite

BLESuite is a Python package that provides an easier way to test Bluetooth Low Energy (BLE) device

Language:PythonMIT172 13 12

Carnivore

Tool for assessing on-premises Microsoft servers authentication such as ADFS, Skype, Exchange, and RDWeb

Language:C#AGPL-3.0139 14 1

go-pillage-registries

Pentester-focused Docker registry tool to enumerate and pull images

Language:GoMIT103 10 1

DatajackProxy

Datajack Proxy allows you to intercept TLS traffic in native x86 applications across platforms

Language:JavaScriptMIT100 11 2

xendbg

A feature-complete reference implementation of a modern Xen VMI debugger. ARCHIVED: Development continues at https://github.com/spencermichaels/xendbg.

Language:C++MIT7300

nOBEX

nOBEX allows emulating the PBAP, MAP, and HFP profiles to test vehicle infotainment systems and similar devices using these profiles

Language:PythonGPL-3.072 12 11

SSHession

The SSH Multiplex Backdoor Tool

Language:PythonAGPL-3.063 100

Winstrument

Winstrument is a framework of modular scripts to aid in instrumenting Windows software using Frida for reverse engineering and attack surface analysis.

Language:PythonGPL-3.06200

proxmark3-amiimicyou

Proxmark3 Amiibo simulator as shown at Recon Montreal 2018

Language:CGPL-2.060 12 1

ICPin

An Integrity-Check Monitoring Pintool

Language:C++GPL-2.054 10 1

The_Automotive_Threat_Modeling_Template

NCC Group Template for the Microsoft Threat Modeling Tool 2016 for Automotive Security

4400

BLEBoy

BLEBoy is a training tool to teach users about BLE security by providing a single BLE peripheral that can be used to experiment with each BLE pairing method and demonstrates GATT security concepts.

Language:C++MIT3600

clickjacking-poc

Clickjacking PoC Generator

Language:GoApache-2.03400

SFPolDevChk

Salesforce Policy Deviation Checker

Language:PythonAGPL-3.029 70

WindowsMemPageDelta

A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection

Language:C++AGPL-3.028 6 2

wstalker

WStalker: an easy proxy

Language:GoAGPL-3.024 7 1

pythia

A tool to extract RTTI information from Delphi executables, written in pure Python

Language:PythonAGPL-3.020 9 9

yaml2yara

Generate bulk YARA rules from YAML input

Language:HTMLAGPL-3.019 80

encoderama

String or worldlist encoder for use in fuzzing or web application testing

Language:GoApache-2.01600

lightweight_static_analysis

Create useful, lightweight static analyses using open source tools + a tiny bit of your code

Language:Python12 70

hwsecuritybingo

Are you auditing an embedded device? Why not play Hardware Security Bingo to add to the fun?

Language:Python900

listips

A script that uses nmap to expand IP ranges into a list of IPs

Language:ShellGPL-3.0800

draft-irtf-cfrg-vrf-06

Reference implementation of a Verifiable Random Function (VRF) from IETF draft-irtf-cfrg-vrf-06 specification

Language:PythonMIT7 8 2